Profiles search

Gerald Rama

Business Information Security Officer/ CISSP/ CISM
Los Angeles, CA, United States

Details

Education: Bachelors of Science, Telecommunication in Management



DeVry University

2001 : 2003
Experience: • Identify the critical applications, customers & business initiatives within Business Unit(s) or LoB’s; and, conduct security business impact assessments to define priority protection requirements.

• Provide expertise on projects to ensure company information security policies, standards and baseline configurations are maintained. Where appropriate drive engagement of Central CISO functions for specialist services / assessments. Including Vulnerability Management & Penetration Tests.

• Create & maintain a scorecard of the security risks affecting the assigned business unit, including providing regular metrics of the progress remediating risks. Perform Stakeholder/Business level risk committees, as appropriate, to improve risk remediation.

• Develop required processes or guidance & deliver training as may be required to reduce risks and comply with internal and external requirements.

• Ensure Conduent information security standard controls, and applicable external regulatory requirements, are reflected in all client and vendor contracts and proposals.

• Create & maintain a catalogue of approved customer assurance collateral to support customer engagements. Including Customer questionnaires, RFP’s & Security Whitepapers.

• Act as the information security specialist / advisor on business projects and coordinate security assessments, as appropriate to the engagement/project.

• Provide oversight and support for external and internal audits and risk assessment activities

• Support all projects and efforts within the Office of the CISO through your knowledge of the supported business lines and technology solutions

• Support compliance across business and technology teams with security governance requirements, including security training programs.

2021 : Present

Conduent

Business Information Security Officer

2019 : 2021

Conduent

Information Security Manager

2016 : 2021

Conduent

Information Technology Security Engineer

2011 : 2016

StrataCare

Senior Systems Engineer

2006 : 2011

First Financial Credit Union

Network Security Administrator
Company: Conduent
Years of Experience: 23
Spoken Language: Filipino

Skills

Active Directory, Banking, Cisco, VMWare, cisco systems products, Cisco Technologies, Data Center, Executive Management, Microsoft Exchange, Microsoft SQL Server, networking, Network Security, Project Management, SAN, Servers, SQL, Switches, Team Leadership, Troubleshooting, Vendor Management, Virtualization, VMware, VPN

About

With a rich and diverse professional journey spanning over two decades in Information Technology, I bring technical and tactical expertise to the forefront with a specialization in Cyber Security. Currently serving as a Business Information Security Officer (BISO), my passion lies in protecting entrusted data and enabling businesses to thrive.

Throughout my career, I have continued to enhance my skills in various areas of Cyber Security, such as security frameworks (NIST 800-35, CIS, ISO 27001, HiTrust, and HIPAA), ensuring compliance and resilience in the face of evolving cyber threats. My experience extends from leading and participating in audits, building and nurturing Information Security Programs, Risk Management, Security Governance, Incident Response, and Security Awareness, establishing a reputation for excellence and trustworthiness.